Senior Product Security Engineer
Credit Karma
15 days ago
Charlotte, NC, USA
Senior
H1B Sponsor
Responsibilities
- Lead security architecture reviews and threat modeling for software and AI/ML systems.
- Define and implement security controls across the SDLC and AI lifecycle.
- Establish guardrails for agentic systems including tool authorization and sandboxing.
- Build and maintain secure-by-default automation for engineering teams.
- Evolve SAST/DAST/SCA programs through tool selection and integration.
- Evaluate and integrate open-source and vendor tooling for security.
- Develop reusable security patterns and reference implementations.
- Implement AI supply chain protections including dataset provenance.
- Enforce secure access and distribution controls for services and models.
- Partner with platform teams to secure infrastructure and runtime.
- Automate validation for AI-specific and common AppSec risks.
Requirements
- 6+ years in product/application security in large-scale systems.
- Experience building or operationalizing security tooling.
- Strong foundation in security architecture and threat modeling.
- Practical understanding of AI/ML systems and workflows.
- Familiarity with common software vulnerabilities and cloud threats.
- Ability to collaborate with software and ML engineers.
- Experience applying security and compliance frameworks.
- Proficiency in programming languages such as Python, Go, or Java.
Benefits
- Medical and Dental Coverage
- Retirement Plan
- Commuter Benefits
- Wellness perks
- Paid Time Off including vacation and sick leave
- Education Perks
- Paid Gift Week in December
Tech Stack
AWSAzureCircleCIGitHub ActionsGoGoogle Cloud PlatformJavaKubernetesNode.jsPythonRustScalaSplunkTypeScriptVault
Categories
AI & MLSecurity